$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft File: XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json) Hash identifier: fQJdm3Mmb2TXiNFPqUJcdW1p6gQGtxnmzjzN6y14sF0= Subject key identifier: 7A:EB:06:55:C4:0D:8C:90:72:CF:0E:41:EB:9E:64:75:2B:6E:89:70 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 074A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft Manifest number: 072C Signing time: Wed 02 Jul 2025 22:08:42 +0000 Manifest this update: Wed 02 Jul 2025 22:08:42 +0000 Manifest next update: Wed 09 Jul 2025 22:08:42 +0000 Files and hashes: 1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: AzS66F6yMr+gtg1rUG2Am7Sc05hJ9vNWF/g3HZhPlN0=) 2: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: ibMAngc6C4+JXufdc4UjRpgLZzdehYxv7hgLysgCefA=) 3: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: lBgqnjRJBGsZ0mPwDni4pJ8lC/MwfA0PzYZAuDKaQP0=) 4: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: B3TtfKIV8qBTfY8o/1C3LKcqpx/TLDJeKafLYgXCPS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1866 (0x74a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Jul 2 22:08:42 2025 GMT Not After : Jul 9 22:08:42 2025 GMT Subject: CN=6865adea-83c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e5:b4:db:35:a6:64:4e:93:7d:86:bb:53:71: da:55:bf:13:52:89:28:51:36:cd:d0:95:f3:29:d0: 87:46:6a:66:22:f9:95:db:11:0a:f5:1d:cb:a6:1a: 02:6b:05:45:28:f3:92:a3:f7:f3:49:20:8f:4c:54: cc:4c:e1:52:1e:d6:4d:31:7f:e1:fe:ef:11:0c:b6: d4:0d:da:75:9a:02:20:7f:3a:47:da:50:61:e9:31: 85:e1:0b:de:53:1d:3b:ab:6e:8d:91:e3:93:d5:3c: c0:02:c9:d8:0d:23:3d:c7:17:f0:79:bd:49:62:37: cd:78:05:ed:61:c4:fa:f0:a1:cc:26:02:52:e7:99: 10:1e:07:c4:64:f1:9f:db:7b:3a:bf:d5:0c:7b:9c: 07:ec:1b:d3:4a:b5:39:60:e9:d3:23:b3:f8:09:1f: d8:cd:7e:4e:e9:c1:82:0d:74:01:f1:aa:30:79:1e: 58:d1:f0:07:59:ba:26:6a:b3:25:51:35:31:a1:f8: f7:6a:1c:c6:61:d5:53:05:8f:65:2b:0a:29:37:d3: 8c:7d:a4:2a:bb:69:58:a0:42:cc:1a:a9:1f:5b:e3: 33:a5:61:25:3c:ee:6c:43:cb:bf:55:87:f6:ac:59: 7e:0c:33:61:15:1c:58:cb:24:7a:a7:98:81:95:6c: 15:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:EB:06:55:C4:0D:8C:90:72:CF:0E:41:EB:9E:64:75:2B:6E:89:70 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:8c:03:5c:31:e6:77:77:04:9f:79:16:79:93:00:9a:76:fe: 1d:84:b6:a2:a0:2d:da:0e:76:60:75:b7:d3:ae:88:98:b9:82: 9c:94:f0:15:55:8e:6d:2b:05:28:be:4f:5a:99:5e:2b:f1:2b: 33:c7:e4:b6:39:6f:0b:6f:c9:b1:b4:45:b1:b8:da:51:d7:bd: 7a:3a:fb:8a:ac:26:f0:de:ba:5e:31:e9:1d:5c:12:2b:be:79: 65:79:26:32:46:47:58:d2:cb:c5:6e:85:7c:cb:03:c6:a3:71: 11:88:88:b1:94:be:7a:1f:39:b4:67:41:e7:5d:6c:9a:84:f2: b1:ea:f7:cf:39:c9:dd:46:77:8d:8d:fb:40:fa:2d:a7:35:13: 40:e1:ca:ed:4e:4c:89:12:f8:50:ef:87:42:b2:72:84:ef:c9: aa:5b:94:31:81:5a:bf:04:2a:30:11:e1:ac:48:98:9d:fa:34: 6a:2b:a6:75:22:45:50:95:31:11:11:79:8a:c0:a6:b4:54:5e: f7:cd:6d:16:fb:14:4f:ee:18:7d:de:35:e9:42:ca:a4:21:b2: 66:67:84:70:a1:41:21:fd:a0:0b:63:0c:c1:c0:f6:76:37:d0: d9:1a:df:48:69:0a:93:17:d1:10:fe:4a:a1:f6:c8:94:eb:e7: b0:3e:2d:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjUwNzAyMjIwODQyWhcNMjUwNzA5MjIwODQyWjAYMRYwFAYD VQQDEw02ODY1YWRlYS04M2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+W02zWmZE6TfYa7U3HaVb8TUokoUTbN0JXzKdCHRmpmIvmV2xEK9R3LphoC awVFKPOSo/fzSSCPTFTMTOFSHtZNMX/h/u8RDLbUDdp1mgIgfzpH2lBh6TGF4Qve Ux07q26NkeOT1TzAAsnYDSM9xxfweb1JYjfNeAXtYcT68KHMJgJS55kQHgfEZPGf 23s6v9UMe5wH7BvTSrU5YOnTI7P4CR/YzX5O6cGCDXQB8aoweR5Y0fAHWbomarMl UTUxofj3ahzGYdVTBY9lKwopN9OMfaQqu2lYoELMGqkfW+MzpWElPO5sQ8u/VYf2 rFl+DDNhFRxYyyR6p5iBlWwVpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHrrBlXE DYyQcs8OQeueZHUrbolwMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjU0Qy81MUE5RUFDQzQxNjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRH bHp3ZkVoWVIxYVhDb2JCcDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVjANcMeZ3dwSfeRZ5kwCadv4dhLaioC3aDnZgdbfTroiYuYKclPAV VY5tKwUovk9amV4r8Sszx+S2OW8Lb8mxtEWxuNpR1716OvuKrCbw3rpeMekdXBIr vnlleSYyRkdY0svFboV8ywPGo3ERiIixlL56Hzm0Z0HnXWyahPKx6vfPOcndRneN jftA+i2nNRNA4crtTkyJEvhQ74dCsnKE78mqW5QxgVq/BCowEeGsSJid+jRqK6Z1 IkVQlTEREXmKwKa0VF73zW0W+xRP7hh93jXpQsqkIbJmZ4RwoUEh/aALYwzBwPZ2 N9DZGt9IaQqTF9EQ/kqh9siU6+ewPi0p -----END CERTIFICATE-----Generated at Thu Jul 3 09:29:23 2025 by rpki-client